Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wpPS3oWMEsbnhr2SU-OkoFTeNMM.roa
File: wpPS3oWMEsbnhr2SU-OkoFTeNMM.roa (raw, json)
Hash identifier: lFxuHNVRPIAYpjEvEkpxKjYRwWAMgZVY4snqMdted6g=
Subject key identifier: C2:93:D2:DE:85:8C:12:C6:E7:86:BD:92:53:E3:A4:A0:54:DE:34:C3
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186C4A6D6A62643F064C5AAF5ACB771710C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wpPS3oWMEsbnhr2SU-OkoFTeNMM.roa
Signing time: Thu 09 Mar 2023 04:35:13 +0000
ROA not before: Thu 09 Mar 2023 04:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 195.133.76.0/24 maxlen: 24
62.76.226.0/24 maxlen: 24
194.87.10.0/24 maxlen: 24
194.87.124.0/24 maxlen: 24
194.87.233.0/24 maxlen: 24
194.87.252.0/24 maxlen: 24
212.192.9.0/24 maxlen: 24
194.58.40.0/24 maxlen: 24
195.58.51.0/24 maxlen: 24
192.124.180.0/24 maxlen: 24
193.124.90.0/24 maxlen: 24
193.124.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Mar 2023 07:04:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c4:a6:d6:a6:26:43:f0:64:c5:aa:f5:ac:b7:71:71:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 9 04:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c293d2de858c12c6e786bd9253e3a4a054de34c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:22:cd:39:60:18:ad:df:87:95:7c:ed:9e:d9:
b1:7a:ef:c7:2c:5f:e9:a5:ab:46:0d:54:09:e5:ce:
75:a0:ea:7f:2e:cd:ef:b9:05:03:69:b4:6e:b3:b2:
0e:2a:83:ca:25:3a:4d:cf:7b:ba:43:6d:0c:66:61:
99:2b:aa:7a:45:91:f8:70:af:b3:22:82:6c:8e:bc:
76:37:79:4e:fc:20:fa:74:6e:f8:ad:7d:5f:8b:87:
bb:be:4f:98:01:46:85:f8:26:34:1b:fc:9d:5d:e2:
cd:6b:31:28:2c:6f:a2:89:c9:80:bf:2d:d5:9f:f7:
03:28:26:5a:62:6d:2c:ee:33:5f:c6:2e:e5:b6:d1:
d2:db:ce:64:87:4c:17:46:54:6f:c5:89:e6:4e:c1:
78:fd:ec:9a:a0:0d:cf:9d:3a:80:df:4c:f9:d0:21:
41:56:98:90:6c:18:8d:e7:fb:dc:cc:c9:50:98:c8:
3a:a2:67:19:10:69:64:41:39:b4:4d:d9:d3:c4:9d:
92:70:b6:a6:26:13:ee:b6:9d:07:5e:45:02:25:6e:
d8:19:60:a6:50:b5:21:4e:0c:7a:d8:8e:d3:75:8f:
81:05:f1:a3:aa:f2:4a:f0:ca:f5:85:17:1a:fa:21:
9c:0c:7a:3a:40:fe:42:2a:c9:e1:ed:61:38:1a:46:
a7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:93:D2:DE:85:8C:12:C6:E7:86:BD:92:53:E3:A4:A0:54:DE:34:C3
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/wpPS3oWMEsbnhr2SU-OkoFTeNMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.226.0/24
192.124.180.0/24
193.124.90.0/24
193.124.200.0/24
194.58.40.0/24
194.87.10.0/24
194.87.124.0/24
194.87.233.0/24
194.87.252.0/24
195.58.51.0/24
195.133.76.0/24
212.192.9.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e2:21:3e:4f:fe:ce:a4:be:86:95:24:fa:6d:b9:57:1a:2f:
e6:28:5a:70:49:fa:18:d8:c2:a2:40:19:4c:da:fd:7f:4a:5a:
a3:f7:c5:13:c3:a1:80:25:1e:14:bd:19:5e:dd:11:d8:e6:68:
44:9f:01:74:7d:d2:ed:a5:80:10:02:3e:2a:4a:e4:e7:72:9b:
52:e2:d5:3c:10:56:84:1d:5a:ba:f6:5e:94:c0:ab:d2:6f:bf:
f0:11:65:f5:fc:c5:6f:8c:31:fc:be:ad:67:d6:ce:41:ed:5f:
e3:bc:da:1b:a3:15:39:59:31:8b:6b:0b:f5:f7:a8:07:e1:6d:
d5:e9:dc:8f:6c:64:b4:29:38:70:79:ac:08:4e:61:b9:b1:93:
e8:fd:79:a2:d7:14:d9:da:73:e9:ae:be:f0:63:ee:4b:bb:a9:
cc:ad:c9:5c:26:dd:71:5d:95:a0:4c:1a:71:da:c6:0c:06:f7:
65:35:21:ab:f3:f2:04:4a:d1:81:08:26:d1:08:64:37:7a:b7:
58:56:f0:b3:7e:07:51:2c:bb:5a:80:6c:28:48:98:a3:be:5c:
b4:a9:b5:a7:9b:33:f5:50:d3:a2:ea:87:90:88:08:03:4c:36:
bc:52:30:97:98:34:d6:46:3f:75:ca:9d:2e:55:d0:1f:39:a3:
d6:4f:29:54
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgISAYbEptamJkPwZMWq9ay3cXEMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMzA5MDQzNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjkzZDJkZTg1OGMxMmM2ZTc4NmJkOTI1M2UzYTRhMDU0ZGUzNGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyLNOWAYrd+HlXztntmxeu/HLF/p
patGDVQJ5c51oOp/Ls3vuQUDabRus7IOKoPKJTpNz3u6Q20MZmGZK6p6RZH4cK+z
IoJsjrx2N3lO/CD6dG74rX1fi4e7vk+YAUaF+CY0G/ydXeLNazEoLG+iicmAvy3V
n/cDKCZaYm0s7jNfxi7lttHS285kh0wXRlRvxYnmTsF4/eyaoA3PnTqA30z50CFB
VpiQbBiN5/vczMlQmMg6omcZEGlkQTm0TdnTxJ2ScLamJhPutp0HXkUCJW7YGWCm
ULUhTgx62I7TdY+BBfGjqvJK8Mr1hRca+iGcDHo6QP5CKsnh7WE4GkaniwIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFMKT0t6FjBLG54a9klPjpKBU3jTDMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvd3BQUzNvV01Fc2JuaHIyU1UtT2tvRlRlTk1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQAPkziAwQA
wHy0AwQAwXxaAwQAwXzIAwQAwjooAwQAwlcKAwQAwld8AwQAwlfpAwQAwlf8AwQA
wzozAwQAw4VMAwQA1MAJMA0GCSqGSIb3DQEBCwUAA4IBAQBi4iE+T/7OpL6GlST6
bblXGi/mKFpwSfoY2MKiQBlM2v1/Slqj98UTw6GAJR4UvRle3RHY5mhEnwF0fdLt
pYAQAj4qSuTncptS4tU8EFaEHVq69l6UwKvSb7/wEWX1/MVvjDH8vq1n1s5B7V/j
vNoboxU5WTGLawv196gH4W3V6dyPbGS0KThweawITmG5sZPo/Xmi1xTZ2nPprr7w
Y+5Lu6nMrclcJt1xXZWgTBpx2sYMBvdlNSGr8/IEStGBCCbRCGQ3erdYVvCzfgdR
LLtagGwoSJijvly0qbWnmzP1UNOi6oeQiAgDTDa8UjCXmDTWRj91yp0uVdAfOaPW
TylU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:30 2024 by rpki-client on console-fra.rpki-client.org